}
if (isset($_POST['email'])) {
$email = filter_var(trim($_POST['email']), FILTER_SANITIZE_STRING);
}
echo $securityHandler->ProcessPasswordResetRequest($dataAccess, $logger, $userName, $email);
break;
case "ResetUserPassword":
$userId = '';
$resetPW = '';
if (isset($_POST['userId'])) {
$userId = filter_var(trim($_POST['userId']), FILTER_SANITIZE_STRING);
}
if (isset($_POST['resetPW'])) {
$resetPW = filter_var(trim($_POST['resetPW']), FILTER_SANITIZE_STRING);
}
$resetResult = $securityHandler->ResetUserPassword($dataAccess, $logger, $userId, $resetPW);
// Automatically log user in with new credentials
$objUser = $securityHandler->AuthenticateUser($dataAccess, $logger, "", $resetPW, $userId);
if ($objUser->UserID > 0) {
// Create session
$sessionDataAccess = new DataAccess();
$sessionHandler = new DBSessionHandler($sessionDataAccess);
session_set_save_handler($sessionHandler, true);
session_start();
// Set session variables
$_SESSION['WebUser'] = $objUser;
$_SESSION['lastActivity'] = time();
}
echo $resetResult;
break;
case "EventViewerRemoveMemberFromEvent":
